ajayrandhawa User-Management-PHP-MYSQL Cross-Site Request Forgery Vulnerability

A cross-site request forgery (CSRF) vulnerability has been identified in ajayrandhawa User-Management-PHP-MYSQL web applications prior to the commit fedcf58797bf2791591606f7b61fdad99ad8bff1. This vulnerability allows attackers to manipulate requests and perform actions on behalf of users without their consent. The issue arises because the application does not adequately verify the authenticity of user requests, particularly for actions that modify user data or account status. The vulnerability can be exploited remotely, and a public proof-of-concept exploit is available.

Impact

Exploitation of this vulnerability allows for cross-site request forgery, where an attacker can trick an administrator into performing actions such as deleting users or changing user statuses, potentially leading to unauthorized modifications of user accounts.

Reproduction

To reproduce this vulnerability, download and deploy the ajayrandhawa User-Management-PHP-MYSQL application. After logging into an administrator account, note that user deletion and status modification operations are performed via GET requests without any CSRF protection. An attacker can exploit this by sending a malicious link that, when clicked by the administrator, will trigger the deletion or status change of a user.